By: Mohib Zico staff 26 Nov 2014 at 4:22 a.m. CST

1 Response
Mohib Zico gravatar
How to configure an IDP initiated SSO with Gluu Server?

By Mohib Zico staff 26 Nov 2014 at 4:23 a.m. CST

Mohib Zico gravatar
IDP initiated SSO start it's SSO journey from IDP side. When we say "SP-initiated", we go to SP's site and click on some link which forwards us to the IDP for authentication. IDP initiated SSO is called with some custom url ( i.e: `https://my_idp_hostname/idp/profile/SAML2/Unsolicited/SSO?providerId=https://sp.com/SAMLRedirector/ClientSAMLLogin.aspx` ) and it will take user to SP (one time) after IDP authentication. For IDP initiated SSO, most configurations are configured from IDP side ( sometimes, it's required to write metadata for SP ). We need to know "where" to point the IDP to redirect the user. IDP initiated SSO requires producing highly customized metadata for each target application. We recommend reaching out to a [Gluu integration partner](http://gluu.org/current-partners) for support on IDP initiated SSO.